$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/Ef5MGOiqVN3U6uVf4SW7HJ2gjBE.roa File: Ef5MGOiqVN3U6uVf4SW7HJ2gjBE.roa (raw, json) Hash identifier: 9CM2bkwK5n3AIXoCzEOShLCPV71KAk/37LFxF69G/jU= Subject key identifier: 11:FE:4C:18:E8:AA:54:DD:D4:EA:E5:5F:E1:25:BB:1C:9D:A0:8C:11 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0E15 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/Ef5MGOiqVN3U6uVf4SW7HJ2gjBE.roa Signing time: Fri 22 Aug 2025 08:51:01 +0000 ROA not before: Fri 22 Aug 2025 08:51:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 18182 IP address blocks: 219.85.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3605 (0xe15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 22 08:51:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=11FE4C18E8AA54DDD4EAE55FE125BB1C9DA08C11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c8:ad:45:04:ca:12:ac:b5:02:de:fc:3f:2f: de:19:96:63:ca:54:a5:5d:54:94:df:f6:b4:c8:1d: 93:f5:6a:b6:f9:b5:c1:09:4e:ec:f8:b9:97:3d:9a: 7b:08:22:e1:31:8c:49:c5:c7:0f:48:3d:0d:af:9d: 9b:ea:3d:3f:81:97:96:b8:41:d0:18:45:6c:26:15: aa:36:f1:cb:05:45:ba:5b:fe:ac:84:82:45:e1:be: 82:48:1d:6f:a7:46:c0:4e:0e:0c:f4:10:f7:c6:04: ff:14:29:4e:ce:34:eb:17:06:d8:3d:ad:85:cd:e6: e7:d4:e2:4e:02:e7:83:1d:9b:5b:43:4f:ae:cd:4d: b9:c1:f4:38:58:f8:21:fe:24:d3:9f:b9:2b:b8:9b: c8:08:5b:be:fd:a2:14:87:bf:7f:da:f7:dc:bf:83: d6:19:d2:3f:e7:37:0a:06:37:6f:b6:d2:68:9c:b7: e5:01:2c:ad:2e:ed:05:4f:90:4c:a4:86:8d:6a:e0: bf:ed:4e:d7:98:62:9c:aa:ae:a7:79:0a:64:eb:db: 83:ea:47:3e:56:af:7b:53:ca:43:70:af:d3:2d:b9: 55:d3:b0:24:7c:ea:57:4a:0d:9b:21:5d:25:e7:a9: 4f:18:8c:1f:7d:8c:70:77:92:fa:0a:cc:bb:93:26: e4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FE:4C:18:E8:AA:54:DD:D4:EA:E5:5F:E1:25:BB:1C:9D:A0:8C:11 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/Ef5MGOiqVN3U6uVf4SW7HJ2gjBE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.85.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:84:20:9d:14:44:fc:33:1f:af:2f:7b:7f:fb:ca:7b:e4:06: b9:c7:96:a3:e4:89:c1:7a:92:f9:fd:86:14:72:10:94:e5:e2: 02:b3:39:15:22:83:11:53:54:b4:2f:22:e7:05:e6:8a:1a:6a: b8:e8:9c:d9:7b:6f:c9:29:2a:ee:8e:10:f5:c1:8b:95:a6:e7: d5:89:94:84:2c:37:7d:7e:97:38:d2:df:53:ed:96:c3:42:80: 90:16:e8:fb:74:25:57:2f:6e:d0:42:bf:fe:b2:38:b5:dd:15: 40:3d:fa:90:55:8c:7e:bb:42:ac:f0:d0:22:f0:5b:71:0b:f4: 8c:33:59:3d:22:26:3d:5a:b2:bf:5c:a3:22:f1:81:f8:2a:f8: 4e:03:97:d4:c6:0f:0e:73:bf:b9:1d:b2:e7:5b:9f:dc:3c:16: 3a:bb:69:0e:fd:11:d5:2e:3b:df:2a:f2:94:fc:09:17:22:79: 88:88:d2:56:ea:7a:51:e8:f8:61:bc:5a:09:a3:08:0e:a3:be: 38:07:38:17:07:02:33:42:32:d9:da:0f:16:8a:e2:db:27:68: 9b:85:e6:e8:8d:2c:e2:61:82:15:8e:7f:b8:6c:9a:26:68:2c: 5f:28:f3:21:7e:b4:25:93:d0:7a:6b:04:ed:88:af:57:af:41: fe:e1:c3:82 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNTA4MjIw ODUxMDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDExRkU0QzE4RThBQTU0 RERENEVBRTU1RkUxMjVCQjFDOURBMDhDMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOyK1FBMoSrLUC3vw/L94ZlmPKVKVdVJTf9rTIHZP1arb5tcEJ Tuz4uZc9mnsIIuExjEnFxw9IPQ2vnZvqPT+Bl5a4QdAYRWwmFao28csFRbpb/qyE gkXhvoJIHW+nRsBODgz0EPfGBP8UKU7ONOsXBtg9rYXN5ufU4k4C54Mdm1tDT67N TbnB9DhY+CH+JNOfuSu4m8gIW779ohSHv3/a99y/g9YZ0j/nNwoGN2+20mict+UB LK0u7QVPkEykho1q4L/tTteYYpyqrqd5CmTr24PqRz5Wr3tTykNwr9MtuVXTsCR8 6ldKDZshXSXnqU8YjB99jHB3kvoKzLuTJuTzAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUEf5MGOiqVN3U6uVf4SW7HJ2gjBEwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9FZjVNR09pcVZOM1U2dVZmNFNX N0hKMmdqQkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA21Uw DQYJKoZIhvcNAQELBQADggEBAHeEIJ0URPwzH68ve3/7ynvkBrnHlqPkicF6kvn9 hhRyEJTl4gKzORUigxFTVLQvIucF5ooaarjonNl7b8kpKu6OEPXBi5Wm59WJlIQs N31+lzjS31PtlsNCgJAW6Pt0JVcvbtBCv/6yOLXdFUA9+pBVjH67Qqzw0CLwW3EL 9IwzWT0iJj1asr9coyLxgfgq+E4Dl9TGDw5zv7kdsudbn9w8Fjq7aQ79EdUuO98q 8pT8CRcieYiI0lbqelHo+GG8WgmjCA6jvjgHOBcHAjNCMtnaDxaK4tsnaJuF5uiN LOJhghWOf7hsmiZoLF8o8yF+tCWT0HprBO2Ir1evQf7hw4I= -----END CERTIFICATE-----Generated at Sun Aug 24 13:38:09 2025 by rpki-client